Fagblogg

AI-driven cyberthreats to critical infrastructure - also relevant for Norway

Hans Lie — Tue, 26 May 2026 09:58:04 GMT

State actors and criminal networks are attacking critical infrastructure with increasing precision and speed. AI makes attackers faster, cheaper and harder to detect. For Norwegian businesses in the energy, maritime and public service sectors, this is not a scenario for the future - it's the current threat landscape.

Command Execution via Drag-and-Drop in Terminal Emulators

Siddharth Dushantha — Mon, 18 May 2026 06:00:00 GMT

Many people may not be aware that terminal emulators such as Tabby, Kitty and xfce4-terminal support dragging and dropping of files into the terminal to insert the file's path directly at the cursor position. While this feature has existed for a while, more people have started to notice this as Claude Code has grown in popularity and allows users to drag and drop files for Claude to process.

Hacklore: The Modern Folklore of Cybersecurity

john@netsecurity.no (John-André Bjørkhaug) — Tue, 24 Mar 2026 07:17:27 GMT

In cybersecurity, there is a phenomenon we rarely talk about, but that almost everyone has encountered. It’s called hacklore.

Cybersecurity during holiday time: Increased risk with low staffing

Henrik A. Byberg — Tue, 03 Jun 2025 12:11:07 GMT

When businesses go on vacation, threat actors wake up. Summer is the peak season for digital attacks - and it's management's responsibility to ensure that someone is still on guard.

Security management for IT-OT integrations and supplier management

Daniel Ourom-Swart — Fri, 07 Mar 2025 14:02:29 GMT

Recent decades have seen a significant increase in the integration, digitization and streamlining of industrial plants. Businesses now face increasing complexity due to integrations between IT and operational technology (OT), the use of cloud solutions and increased use of 4G and 5G solutions for communication. These developments have revolutionized the way we do business, but have also introduced new challenges related to security. For OT environments in particular, it will be important to address these challenges through a risk-based approach.

Going forward, we will see increased integration to streamline operations. We need to facilitate a secure integration that results in efficient, reliable and secure operations.

In this blog post, we address:

Challenges with increasing gravity of integrations
The status of vendor security
What's required under the Digital Security Act (NIS2)
How to build a resilient supply chain by applying a risk-based approach

Code Execution Through Ghostty Window Title

Siddharth Dushantha — Tue, 11 Feb 2025 09:17:17 GMT

Summary

On December 31, 2024,version 1.0.1 of the modern terminal emulatorGhosttywas releasedthat patched a code execution vulnerability, now tracked as CVE-2024-56803. While terminals execute commands by design, this vulnerability allowed for unintended command execution through the title reporting escape sequence (\e[21t).

Cyber attacks: Surprisingly few know who to call when they're attacked

Netsecurity — Fri, 23 Aug 2024 14:54:46 GMT

No coincidence that we have become one of Norway's leading competence centers for Palo Alto Networks

Netsecurity — Fri, 23 Aug 2024 13:33:00 GMT

ANSI Escape Injection vulnerability in WinRAR

Siddharth Dushantha — Fri, 23 Aug 2024 12:59:36 GMT

Overview of the update

On February 28, 2024, RARLAB released an update for WinRAR, which fixed an ANSI escape injection vulnerability that I had found in the console versions of RAR and UnRAR, affecting versions 6.24 and earlier. This vulnerability, tracked as CVE-2024-33899 for Linux and Unix systems and CVE-2024-36052 for Windows, allowed attackers to spoof the file list or perform a local service attack (Linux and Unix only).

Memory consumption vulnerability in libvte (CVE-2024-37535)

Siddharth Dushantha — Fri, 23 Aug 2024 12:55:55 GMT

Overview of the update

On March 15, 2024, GNOME released an update for libvte that fixed a memory consumption vulnerability, now known as CVE-2024-37535. This vulnerability affects many popular terminal emulators such as GNOME Terminal, XFCE Terminal and MATE Terminal that use libvte version 0.76.2 or older. This vulnerability can be exploited by an attacker to kill the Xorg session, which will cause the victim to lose all of their unsaved work.